| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <42170ABA.14708.45A8C095@localhost> From: nick at virus-l.demon.co.uk (Nick FitzGerald) Subject: Re: iDEFENSE Labs Website Launch (iDEFENSE Labs) Edge, Ronald D wrote: > Funny. All I get is a blank white page. Could it be you are expecting me > to trust your site, turn off all my defenses, turn on scripting, to view > the page? You're kidding right, this is just a joke to test participants > gullibility, right? Sarcasm noted, but that _is_ standard operating procedure for iDEFENSE. As I have argued several times before, for example (sorry, URL will wrap): http://lists.netsys.com/pipermail/full-disclosure/2005- January/030971.html it seems that at iDEFENSE, having a spiffy, bells-and-whistles website that is over-designed by folk with no security clue whatsoever is much more important than being a security company. Now, even MS (at least after a bit of borax was poured on it) fixed their security bulletin pages so script-disabled browsers could view the entire contents of the page, but iDEFENSE steadfastly doesn't, so I guess we can all tell what that means about iDEFENSE's business focus. (Read the above-linked item for a more detailed explication of all this.) Regards, Nick FitzGerald
Powered by blists - more mailing lists